OWASP ZAP WAVE - XSS Form basic

OWASP ZAP WAVE - XSS in a Form parameter with an anti CSRF token in it

Description

The 'name' parameter in the form is written to the page with script and SCRIPT tabs being stripped. It will still be vulnerable to script injection attacks.
Only a POST is vulnerable, not a GET.

Anti CSRF Token:
Name:

OWASP ZAP WAVE - XSS in a Form parameter with an anti CSRF token in it

Description

Example